Identity Theft Info IdentityTheftInfo.blogspot.com

Credit card insecurity

2006-01-11T20:35:00.000-08:00

Over the holidays, I did a huge portion of my shopping online.
This year, I noticed it wasn't enough to simply type my credit card number into the browser at J. Crew or GapKids or whatever secure site I was patronizing. They all wanted the three-digit security code off the back of my MasterCard as well. I gave it up willingly.
But a warning issued recently from the New York State Banking Department got me thinking twice. It cautioned about a new scam in which this code is the key.
Here's how it works: Scammers, who have already obtained your credit card number in other ways, call your house pretending to be the fraud and security department of your credit card company.

New York Daily News - Home - Credit card insecurity

As lawmakers dither, identity-theft victim remains trapped in long nightmare - Technology

2006-01-10T06:19:00.000-08:00

NEW YORK As members of Congress continue to dither over legislation concerning data security, consumers' rights and identity theft nearly a full year after the ChoicePoint debacle, perhaps they should meet Raymond Lorenz.

In the early 1990s, someone ran amok using Lorenzo's identity. It was used to rack up tens of thousands of dollars in fraudulent credit card debt. It was given to the police after various traffic violations. And a man even used the name Raymond Lorenzo when he was arrested and indicted in 1991 in Suffolk County, New York, for, among other things, burglary, forgery and criminal possession of a weapon

As lawmakers dither, identity-theft victim remains trapped in long nightmare - Technology - International Herald Tribune

Spear phishers target eBay

2006-01-06T06:26:00.000-08:00

Security researchers have uncovered a campaign of targeted spam messages that seek to defraud eBay sellers. Cybercrooks are targeting eBay sellers by sending forged auction inquires from what appears to be eBay's "Question from eBay Member" message portal, according to US-based security reseller Greenview Data, which markets the SpamStopsHere junk mail filtering service.
The junk mail messages seek to dupe account holders into following a "Respond Now" link button in the email which directs users to a fraudulent eBay login screen. Once the seller has entered their login information, fraudsters "hijack" the seller's account and steal their identity...

Spear phishers target eBay - Yahoo! News UK

Sad State of Data Security

2006-01-06T06:24:00.000-08:00

How does this keep happening? Companies have been publicly humiliated, slapped with audits, and threatened with prosecution, but sensitive personal data continues to be compromised. The U.S. Department of Justice is the latest to demonstrate its information-security incompetence. The mistake: exposing Social Security numbers on its Web site.
It's the IT problem that just won't go away. From the time early last year that ChoicePoint Inc. admitted it had been duped into revealing personal data to identity thieves, dozens of other businesses, government agencies and schools have followed with their own admissions of ineptitude. In most cases, victims can't do much more than keep a watchful eye on their financial statements and credit reports -- and hope for the best. Not surprisingly, fraud is on the rise and consumer confidence is on the decline...

Sad State of Data Security

Mobile malware, phishing activities to surge in 2006

2006-01-06T06:22:00.000-08:00

VIRUS writers have found a new playground: the extremely pervasive mobile phones.
According to the McAfee AVERT (Anti-Virus and Emergency Response Team) Labs, the rapid evolution of smartphone technology and the growing use of converged mobile devices will fuel the rise in the number of mobile malware in 2006.
Mobile phone viruses would be particularly prevalent this year as virus writers take advantage of the proliferation of mobile devices and the fact that users were less likely to install mobile security solutions, the antivirus firm said.
The perception that the threat of mobile malware was much less than that of its PC counterpart would encourage virus writers to come up with even more sophisticated threats, the McAfee AVERT Labs added.

Mobile malware, phishing activities to surge in 2006 - INQ7.net

Identity Theft Laws Elevate Security to the C-Level

2006-01-04T06:04:00.000-08:00

What do Time Warner, Lexis-Nexis, ADP, and Bank of America all have in common? They all suffered breaches in customer data security in 2005, and the incidents all fueled calls for federal legislation that could lead to onerous security demands on organizations holding consumer information. Even if legislators show restraint in demanding new controls, it's time for corporations to create C-level security positions.
Security breaches now lead to high-profile public disclosures thanks to state laws such as California's Security Breach Information Act (SP 1386) and Washington's "Breach Disclosure" law (SB 6043), which require that consumers in those states be notified when their personal data is compromised. With other states eyeing similar bills, some in Congress say it's time for a nationwide approach-an outcome business might favor, too, as long as the law isn't too demanding.

Compliance Pipeline Identity Theft Laws Elevate Security to the C-Level

Financial institutions set dubious record for ID theft

2006-01-04T06:03:00.000-08:00

A final flurry of computer security breaches marked the end of 2005 -- an unfortunate but not surprising end to a record year for potential identity-theft activity.From banks and hospitals to government agencies, almost 100 breaches were reported in 2005, including a half-dozen in December alone, according to the Privacy Rights Clearinghouse, a nonprofit watchdog group in California.Major institutions such as Bank of America and the Federal Deposit Insurance Corp. were victimized, as were little-known data-technology outfits such as Georgia-based ChoicePoint and CardSystems Solutions Inc.

Financial institutions set dubious record for ID theft - OrlandoSentinel.com: Business

Evonne Williams sentenced

2006-01-04T06:01:00.000-08:00

A Cicero woman will spend 2 to 4 years in state prison after pleading guilty to the identity theft of 16 people. Prosecutors say Evonne Williams had access to credit card information through her employer, Padcare, INC. in DeWitt. In addition to prison time, Williams must pay just under $16,000 in restitution and receive treatment for a drug problem.

News 10 Now 24 Hour Local News TOP STORIES Evonne Williams sentenced

Attack Vulnerability Worries Windows Users

2006-01-04T05:52:00.000-08:00

"Current WMF activity has already risen to levels similar to that of the emerging zero-day attacks against Internet Explorer in the fall of 2003," said Ken Dunham, senior engineer at iDefense. "In that situation, attacks skyrocketed over a one month period, which is highly likely for the existing WMF attacks in early 2006."

E-Commerce News: Security : Attack Vulnerability Worries Windows Users

An investigation into anti-spyware

2006-01-04T05:50:00.000-08:00

A report by Mark Russinovich has raised serious concerns about the seedier side of anti-spyware. He investigated a number of programs that claimed to be spyware removal tools, and found that some of them not only do a poor job of detecting spyware, but may in fact be hazards themselves.

An investigation into anti-spyware

Windows PCs face 'huge' virus threat

2006-01-04T05:49:00.000-08:00

Computer security experts were grappling with the threat of a new weakness in Microsoft's Windows operating system that could put hundreds of millions of PCs at risk of infection by spyware or viruses.
The news marks the latest security setback for Microsoft, the world's biggest software company, whose Windows operating system is a favourite target for hackers

Windows PCs face 'huge' virus threat - Financial Times - MSNBC.com

Top 10 tips to keep that new computer spyware-free

2006-01-04T05:46:00.000-08:00

Got a new computer for Christmas? Are you worried about all the spyware horror stories you've read? You should be. I've heard varying numbers, but it's said that putting an unprotected computer on a high-speed connection results in getting infected within a few minutes. I just read that the time is getting longer, but that's not much comfort. By all means you should have a router if you're on a high speed connection. A router provides some protection, but is only the beginning. Ok, now the new machine is booted up the first time and ready to go. It's on the net. In this order, here's what to do....

Top 10 tips to keep that new computer spyware-free Spyware Confidential ZDNet.com

New Attacks 'Spear' Credit Union CEOs

2006-01-04T05:44:00.000-08:00

Malicious hackers are targeting CEOs of U.S. credit unions with phishing e-mails that try to take advantage of a recently patched Internet Explorer hole to compromise systems used by the credit unions, according to the Credit Union Information Security Professionals Association, a group of IT professionals who work at credit unions.

New Attacks 'Spear' Credit Union CEOs

Westpac targeted in latest spam attack -

2006-01-04T05:42:00.000-08:00

OPINION
REVIEWS
RESOURCES
IT JOBS
Westpac targeted in latest spam attack
Email
Print
Normal font
Large font
January 4, 2006 - 11:21AM
AdvertisementAdvertisement
Australia is again being bombarded by a series of 'phishing' attacks by fraudsters sending malicious spam to email users, this time designed to steal personal banking details from Westpac customers.
But despite the high volume of fraudulent email being reported by customers, banks said there had been relatively little financial loss.
The latest spate of phishing attacks take the form of an official looking email that asks recipients to confirm security details for an account at one of three Australian banks.

Westpac targeted in latest spam attack - Breaking - Technology - smh.com.au

Local residents warned of phishing scam

2006-01-04T05:39:00.000-08:00

It's called phishing, but it's not fun for consumers who find themselves on the end of the hook.Recently, Jefferson City citizens have been targets of the practice.Relying on fake e-mails, phishing is an Internet scam featuring links to what appears to be a bonafide Central Bank Web site. Complete with the official-looking dogwood logo, the e-mails warn that online home banking and bill paying services will be deactivated if the customer doesn't respond with the "requested information" soon.One woman recently was suckered. She reported the loss first to the bank and later to Jefferson City police.

Jefferson News Tribune

Phishing By The Numbers: 41,000 Blocked Sites in 2005

2006-01-04T05:36:00.000-08:00

The Netcraft Toolbar has blocked more than 41,000 confirmed phishing URLs since its launch last Dec. 28. The volume of URLs increased throughout the year, from about 3,000 per month in June to 5,000-plus in September and more than 8,000 in October and November. With a year's worth of data in hand, an analysis of attacks illustrates common patterns and practices in the operation of phishing scams.

IT Observer Phishing By The Numbers: 41,000 Blocked Sites in 2005

EBay Users Hit by Mass Phishing Attacks

2006-01-04T05:33:00.000-08:00

Popular online auction site eBay was the target for 96 percent of all UK phishing attacks in December, according to security specialists Fortinet.
Fraudsters seem to have anticipated the Christmas rush to use eBay to buy presents -- and sell unwanted ones -- and are targeting eBay users in a widespread assault.
Guillaume Lovet, Threat Response team leader at Fortinet, said: "One of the easiest and quickest ways to make money on the Internet is setting up an auction on eBay for a [bogus] item, cashing the money, then disappearing.

EBay Users Hit by Mass Phishing Attacks - NewsFactor Network

Computer security breaches raise identity theft concerns

2005-12-27T21:21:00.000-08:00

Ames, Ia. — Karen Scoggin thought she could block identity thieves if she refused to carry credit cards.

Now she has to worry about how many people have their hands on her Social Security number.

Scoggin, who works at the Iowa State University Book Store, was one of about 3,000 ISU employees whose personal data might have been viewed by hackers who infiltrated two computers earlier this month.

DesMoinesRegister.com

Texas expands spyware lawsuit against Sony BMG

2005-12-27T21:20:00.000-08:00

AUSTIN (AP) - Texas Attorney General Greg Abbott expanded his lawsuit against Sony BMG Music Entertainment on Wednesday, alleging that a second form of anti-piracy technology used by the label violates the state's spyware and deceptive trade practices laws.
Abbott sued Sony BMG in November, saying the world's second-largest music label surreptitiously included spyware on millions of CDs through technology known as XCP. That technology, included on 52 Sony BMG titles, could leave computers vulnerable to hackers, he said.

MercuryNews.com | 12/21/2005 | Texas expands spyware lawsuit against Sony BMG

Basic Rules Plus Common Sense Add Up to Security

2005-12-27T21:18:00.000-08:00

For some people, the worst gift ever would be a new computer with an Internet connection. One embittered user wrote in October to say that he was "so frustrated with hackers, virus, Trojans, worms, constant upgrades, security patches, etc, etc." that he was going to suspend his Internet account.

I'm guessing that a new laptop wasn't on his wish list this year.

Basic Rules Plus Common Sense Add Up to Security

Internet users now part of phishing harvest

2005-12-27T21:17:00.000-08:00

It takes just seconds, a few taps on the keyboard, a few clicks of the mouse, and Jason Thomas has launched a computer bug that harvests e-mail addresses. After a minute, he aborts the program and unveils the list of addresses he's collected. "It's very easy to do," he said. "And I'm no techie by any stretch of the imagination."

This is how phishing usually begins, with your e-mail address. Next comes an automated e-mail, sent by a spam generator, which instructs you to visit a fake Web site and "update your credit billing information" or "verify your PayPal login."

Then, if the scammer is lucky and you're not computer savvy, you hand over your name, credit-card number, and other personal data – a valuable bundle of information that's sold on the black market to someone who wants to steal your identity and your line of credit.

Northwest Herald - Online

Seniors urged to beware of newest phone scam

2005-12-27T21:01:00.000-08:00

AUGUSTA (Dec 24): Maine Attorney General Steven Rowe, AARP Maine and TRIAD are warning senior consumers about potential fraud and identity theft by scam artists hoping to take advantage of the new Medicare-Part D Prescription Drug Benefit.

Beginning Jan. 2, 2006, the new, voluntary benefit will become available to Maine seniors with Medicare. Eighteen Medicare-approved private companies in Maine will provide this coverage, but there are already scams being reported across the country where someone offering to sell a benefit card contacts seniors either by telephone or in person.

VillageSoup - Government News - VillageSoup

Names leave no clus as to location

2005-12-27T20:59:00.000-08:00

It's common knowledge that identity theft is a growing problem. But who would have expected it to rear its ugly head in high school sports.

Yet here we are with some of the newer co-ops and consolidations bearing names that provide nary a hint of their location.

Try Central Prairie on for size. Likewise, Dakota Prairie, the North Star Bearcats and the Northern Lights. One of those appellations narrows things down to one of two states. The other two merely cut the possibilites down to anywhere in the northern hemisphere.
Bismarck Tribune Online - Bismarck, ND

Christmas ruined by card fraudsters

2005-12-27T20:58:00.000-08:00

A family of five had their Christmas ruined after they became the latest victims of identity card theft.

Debbie and Steven Grimshaw were unable to give each other Christmas presents after their account was cleaned out by crooks cloning credit cards.

The couple, who have three children under six, were devastated their festive funds had been taken and confused as to how the details were copied.

Norwich Evening News 24

Shredders -- Let it rip

2005-12-27T20:48:00.000-08:00

NEW YORK (MONEY Magazine) - Everyone's been warned about identity theft. The idea that some hacker can snoop around your hard drive, obtain some account numbers and passwords, and clean out your funds has Americans reaching for the nearest Internet-security software.

However, it is far less likely that someone is going to break into your computer than it is that someone will sift through your garbage to get the same information.

One of the best ways to foil trash-picking identity thieves is to shred all sensitive documents before throwing them out. But which shredder to buy?

MONEY Magazine: Spend Tech: Shredders -- Let it rip - Oct. 21, 2005